Simple and secure access management Single sign-on to any cloud and on-premises web app Azure Active Directory provides secure single sign-on to cloud and on-premises applications including Microsoft Office 365 and thousands of SaaS applications such as Salesforce, Work- day, DocuSign, ServiceNow, and Box. Easily extend Active Directory to the cloud Connect Active Directory and other on-premises directories to Azure Active Directory in just a few clicks and maintain a con- sistent set of users, groups, passwords, and devices across both environments. Works with iOS, Mac OS X, Android, and Windows devices Users can launch applications from a personalized web-based access panel, mobile app, Office 365, or custom company por- tals using their existing work credentials—and have the same experience whether they’re working on iOS, Mac OS X, Android and Windows devices. Protect sensitive data and apps Enhance application access security using rule-based Azure Multi-Factor Authentication for both on-premises and cloud applications. Protect your business with security reporting, au- diting, alerting, and “shadow IT” application discovery. Take advantage of unique machine learning-based capabilities that identify potential threats. Protect on-premises web apps with secure remote access Access your on-premises web applications from everywhere and protect with multi-factor authentication, conditional access policies, and group-based access management. Users can access SaaS and on-premises web apps from the same portal. Reduce costs and enhance security with self-service Delegate important tasks such as resetting passwords and the creation and management of groups to your employees. Pro- viding self-service application access and password manage- ment through verification steps can reduce helpdesk calls and enhance security. Enterprise scale and SLA Azure Active Directory Premium offers enterprise-grade scale and reliability. As the directory for Office 365, it already hosts hundreds of millions of users and handles billions of authenti- cations every day. The high availability service is hosted in globally distributed datacenters in 17 regions, with worldwide technical support that provides a 99.9% SLA. CLOUD Benefits of Azure Active Directory ON-PREMISES USERS CREATE AND MANAGE THEIR OWN GROUPS Empower users to create their own groups, assign members to groups they own, approve join requests, and more. Enable users to work from any location using any device. Give them always-on access to all their work resources using a single set of credentials protected with Multi-Factor Authentication. After a user has signed in, they get single sign-on access to their apps and data. Add and manage SaaS applications in the public cloud by using the Azure AD Application Gallery. Users can then quickly sign in to your Microsoft and third-party SaaS apps from the Access Panel. Set up user provisioning to automatically sync users to your app and back. SYNC USERS, GROUPS, DEVICES, PASSWORDS, AND MORE Azure Active Directory Connect, the simple, fast and lightweight tool to connect on-premises directo- ries to Azure Active Directory in a few clicks, will synchronize only the data needed from single or multi-forest environments and will enable single sign on via password sync or federation with AD FS to Office 365 and thousands of other SaaS applications. NON-MICROSOFT APPS MICROSOFT APPS + SERVICES ON-PREMISES WEB APPS Minimize support costs and keep users up and running by configuring self-service experiences. With web-based tools such as Access Panel and Password Reset, give users a personalized, company-branded portal to access SaaS applications. SELF-SERVICE CAPABILITIES CONTOSO ADMIN USERS CHANGE AND RESET THEIR OWN PASSWORDS Give all users in your directory the capability to change and reset their passwords--whether they are in the cloud or on-premises. ACCESS PANEL MANAGE YOUR SAAS APPLICATIONS EMPOWER YOUR USERS HOME OFFICE CORPORATE OFFICE IDENTITY MANAGER SERVER MULTI-FACTOR AUTH SERVER HYBRID IDENTITY SOLUTIONS Provide users with a common identity across on-premises and cloud-based services, leveraging Windows Server Active Directory and Azure AD capabilities. IDENTITY SYNC SERVICES SYNC FROM ANY DIRECTORY OR DATABASE TO THE CLOUD AND BACK Identity Manager creates a compilation of identity attributes with validation and keeps them in sync with all identity realms, including Active Directory and Azure AD. NAME: TITLE: EMAIL: TELEPHONE: Samantha Coordinator [email protected] 555.1212 DATABASE LDAP HR EXCHANGE applications groups approvals profile My Directs Create Group Sales Group My Contacts My Team + [email protected] CONTOSO APPLICATION SERVER Cloud Identity and Access Management © 2015 Microsoft Corporation. All rights reserved. Created by the Azure poster team Email: [email protected] Monitor access and anomaly reports to help secure your Azure AD directory. Get visibility into security risks so that you can mitigate them. INTEGRATE YOUR LOB AND SAAS APPS Build line-of-business (LOB) or SaaS applications using standard development tools and integrate your applications with Azure AD for use in one organization (single tenant) or many organizations (multi-tenant). Integrated applications leverage Azure AD for single sign-on, identity and access management, querying the directory, and more. Publish your app to the Azure AD Application Gallery. An administrator then adds it to the Access Panel for use by any user or group that has been assigned access. PREVENT MALICIOUS ATTACKS CONTOSO Like it? Get it. ACCESS PANEL > GROUPS DIRECTORY OBJECTS APPS YOU BUILD APPLICATION PROXY CONNECTOR applications groups approvals profile [email protected] CONTOSO Dynamics CRM Windows Intune workday CONTOSO SIGN IN Keep me signed in Can’t access your account? [email protected] Sign in Cancel Microsoft Intune Azure Dynamics CRM ON THE GO Azure Active Directory Azure Active Directory provides single sign-on to thousands of cloud (SaaS) apps and access to web apps you run on-premises. Built for ease of use, Azure Active Directory features Multi-Factor Authentication (MFA), access control based on device health, user location, and identity and holistic security reports, audits, and alerts. Azure Active Directory is available in 3 editions: Free, Basic and Premium. PASSWORD RESET Reset your password [email protected] USER ID: NEW PASSWORD: Verification Step 1 > Verification Step 2 > Choose a new password CONFIRM PASSWORD: CONTOSO CONTOSO SIGN IN i AZURE CONTOSO SIGN IN CONTOSO SIGN IN PUBLIC CLOUD CONTOSO SIGN IN CALLING YOUR PHONE... SUCCESS! CONTOSO PASSCODE FEATURED APPLICATIONS (9) ALL (1255) BUSINESS MANAGEMENT (51) COLLABORATION (100) CONSTRUCTION (3) CONTENT MANAGEMENT (47) CRM (44) DATA SERVICES (63) DEVELOPER SERVICES (60) .......... Box Dropbox for Business NAME PUBLISHER APP URL Box Box www.box.com Office 365 Azure AD Application Gallery AZURE ACTIVE DIRECTORY 12:01 4:30 9:48 SIGN IN ATTEMPTS GEOGRAPHY REPORTS ACCESS REPORTS - - - - - - - - - - IP IP DEVICE REPORTS APP USAGE REPORTS CONTOSO DEVELOPERS CONTOSO HR USER ACCOUNTS MOBILE DEVICES PASSWORDS GROUP ACCOUNTS COMPUTER ACCOUNTS WINDOWS SERVER ACTIVE DIRECTORY AD Office 365 ... My On-premises Web App . . . . . . Get more applications